Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training

Kento Hasegawa; Seira Hidano; Shinsaku Kiyomoto; Nozomu Togawa

doi:10.1007/978-3-030-92548-2_21

Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training

Kento Hasegawa^*, Seira Hidano, Shinsaku Kiyomoto, Nozomu Togawa

^*Corresponding author for this work

School of Fundamental Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Machine learning is an attractive technique in the security field to automate anomaly detection and to detect unknown threats. Most of the real-world training samples to learn with neural networks are imbalanced from the viewpoint of their distribution and importance priority on each class. In particular, datasets for security problems are imbalanced in most cases. Learning from an imbalanced dataset may cause the degradation of a classifier’s performance, especially in the minority but important classes. We thus propose a new robust learning method for imbalanced datasets using adversarial training. Our proposed method leverages adversarial training to expand classification areas of minority classes. Specifically, we design weighted adversarial training, where the perturbation size of adversarial examples is weighted according to the number of samples in each class. We conducted experiments with real-world datasets, and the results demonstrate that our proposed method increases classification performance in both binary and multiclass classifications. Namely, our proposed method makes classifiers more robust even if the dataset is imbalanced, which is useful for us to apply machine learning to security tasks.

Original language	English
Title of host publication	Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings
Editors	Mauro Conti, Marc Stevens, Stephan Krenn
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	392-411
Number of pages	20
ISBN (Print)	9783030925475
DOIs	https://doi.org/10.1007/978-3-030-92548-2_21
Publication status	Published - 2021
Event	20th International Conference on Cryptology and Network Security, CANS 2021 - Virtual, Online Duration: 2021 Dec 13 → 2021 Dec 15

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13099 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	20th International Conference on Cryptology and Network Security, CANS 2021
City	Virtual, Online
Period	21/12/13 → 21/12/15

Keywords

Adversarial training
Detection
Imbalanced datasets
Neural networks

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-030-92548-2_21

Cite this

Hasegawa, K., Hidano, S., Kiyomoto, S., & Togawa, N. (2021). Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training. In M. Conti, M. Stevens, & S. Krenn (Eds.), Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings (pp. 392-411). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13099 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-92548-2_21

Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training. / Hasegawa, Kento; Hidano, Seira; Kiyomoto, Shinsaku et al.
Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings. ed. / Mauro Conti; Marc Stevens; Stephan Krenn. Springer Science and Business Media Deutschland GmbH, 2021. p. 392-411 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13099 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hasegawa, K, Hidano, S, Kiyomoto, S & Togawa, N 2021, Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training. in M Conti, M Stevens & S Krenn (eds), Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 13099 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 392-411, 20th International Conference on Cryptology and Network Security, CANS 2021, Virtual, Online, 21/12/13. https://doi.org/10.1007/978-3-030-92548-2_21

Hasegawa K, Hidano S, Kiyomoto S, Togawa N. Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training. In Conti M, Stevens M, Krenn S, editors, Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings. Springer Science and Business Media Deutschland GmbH. 2021. p. 392-411. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-92548-2_21

Hasegawa, Kento ; Hidano, Seira ; Kiyomoto, Shinsaku et al. / Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training. Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings. editor / Mauro Conti ; Marc Stevens ; Stephan Krenn. Springer Science and Business Media Deutschland GmbH, 2021. pp. 392-411 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{f0cee31e2ba245a2b852f480ff8c77c2,

title = "Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training",

abstract = "Machine learning is an attractive technique in the security field to automate anomaly detection and to detect unknown threats. Most of the real-world training samples to learn with neural networks are imbalanced from the viewpoint of their distribution and importance priority on each class. In particular, datasets for security problems are imbalanced in most cases. Learning from an imbalanced dataset may cause the degradation of a classifier{\textquoteright}s performance, especially in the minority but important classes. We thus propose a new robust learning method for imbalanced datasets using adversarial training. Our proposed method leverages adversarial training to expand classification areas of minority classes. Specifically, we design weighted adversarial training, where the perturbation size of adversarial examples is weighted according to the number of samples in each class. We conducted experiments with real-world datasets, and the results demonstrate that our proposed method increases classification performance in both binary and multiclass classifications. Namely, our proposed method makes classifiers more robust even if the dataset is imbalanced, which is useful for us to apply machine learning to security tasks.",

keywords = "Adversarial training, Detection, Imbalanced datasets, Neural networks",

author = "Kento Hasegawa and Seira Hidano and Shinsaku Kiyomoto and Nozomu Togawa",

note = "Publisher Copyright: {\textcopyright} 2021, Springer Nature Switzerland AG.; 20th International Conference on Cryptology and Network Security, CANS 2021 ; Conference date: 13-12-2021 Through 15-12-2021",

year = "2021",

doi = "10.1007/978-3-030-92548-2_21",

language = "English",

isbn = "9783030925475",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "392--411",

editor = "Mauro Conti and Marc Stevens and Stephan Krenn",

booktitle = "Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings",

}

TY - GEN

T1 - Toward Learning Robust Detectors from Imbalanced Datasets Leveraging Weighted Adversarial Training

AU - Hasegawa, Kento

AU - Hidano, Seira

AU - Kiyomoto, Shinsaku

AU - Togawa, Nozomu

PY - 2021

Y1 - 2021

N2 - Machine learning is an attractive technique in the security field to automate anomaly detection and to detect unknown threats. Most of the real-world training samples to learn with neural networks are imbalanced from the viewpoint of their distribution and importance priority on each class. In particular, datasets for security problems are imbalanced in most cases. Learning from an imbalanced dataset may cause the degradation of a classifier’s performance, especially in the minority but important classes. We thus propose a new robust learning method for imbalanced datasets using adversarial training. Our proposed method leverages adversarial training to expand classification areas of minority classes. Specifically, we design weighted adversarial training, where the perturbation size of adversarial examples is weighted according to the number of samples in each class. We conducted experiments with real-world datasets, and the results demonstrate that our proposed method increases classification performance in both binary and multiclass classifications. Namely, our proposed method makes classifiers more robust even if the dataset is imbalanced, which is useful for us to apply machine learning to security tasks.

AB - Machine learning is an attractive technique in the security field to automate anomaly detection and to detect unknown threats. Most of the real-world training samples to learn with neural networks are imbalanced from the viewpoint of their distribution and importance priority on each class. In particular, datasets for security problems are imbalanced in most cases. Learning from an imbalanced dataset may cause the degradation of a classifier’s performance, especially in the minority but important classes. We thus propose a new robust learning method for imbalanced datasets using adversarial training. Our proposed method leverages adversarial training to expand classification areas of minority classes. Specifically, we design weighted adversarial training, where the perturbation size of adversarial examples is weighted according to the number of samples in each class. We conducted experiments with real-world datasets, and the results demonstrate that our proposed method increases classification performance in both binary and multiclass classifications. Namely, our proposed method makes classifiers more robust even if the dataset is imbalanced, which is useful for us to apply machine learning to security tasks.

KW - Adversarial training

KW - Detection

KW - Imbalanced datasets

KW - Neural networks

UR - http://www.scopus.com/inward/record.url?scp=85121904508&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85121904508&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-92548-2_21

DO - 10.1007/978-3-030-92548-2_21

M3 - Conference contribution

AN - SCOPUS:85121904508

SN - 9783030925475

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 392

EP - 411

BT - Cryptology and Network Security - 20th International Conference, CANS 2021, Proceedings

A2 - Conti, Mauro

A2 - Stevens, Marc

A2 - Krenn, Stephan

PB - Springer Science and Business Media Deutschland GmbH

T2 - 20th International Conference on Cryptology and Network Security, CANS 2021

Y2 - 13 December 2021 through 15 December 2021

ER -